升级服务器openssh版本
升级服务器openssh版本
(1)参考命令:
安装编译工具
# yum install gcc pam-devel openssl-devel gcc-c++ make -y
备份当前sshd
# mv /etc/ssh /etc/ssh.old
# mv /etc/init.d/sshd /etc/init.d/sshd.old
卸载当前sshd
# rpm -qa | grep openssh
openssh-5.3p1-124.el6_10.x86_64
openssh-askpass-5.3p1-124.el6_10.x86_64
openssh-clients-5.3p1-124.el6_10.x86_64
openssh-server-5.3p1-124.el6_10.x86_64
# rpm -e --nodeps openssh-5.3p1-124.el6_10.x86_64
# rpm -e --nodeps openssh-askpass-5.3p1-124.el6_10.x86_64
# rpm -e --nodeps openssh-clients-5.3p1-124.el6_10.x86_64
# rpm -e --nodeps openssh-askpass-5.3p1-104.el6.x86_64
# rpm -qa | grep openssh
openssh安装前环境配置
# install -v -m700 -d /var/lib/sshd 创建sshd目录
# chown -v root:sys /var/lib/sshd 修改sshd所属组
# groupadd -g 50 sshd
# useradd -c 'sshd PrivSep' -d /var/lib/sshd -g sshd -s /bin/false -u 50 sshd
解压openssh源码并编译安装
tar -zxf openssh-8.2p1.tar.gz
cd openssh-8.2p1
./configure --prefix=/usr --sysconfdir=/etc/ssh --with-md5-passwords --with-pam --with-ssl --with-zlib --with-openssl-includes=/usr --with-privsep-path=/var/lib/sshd mandir=/usr/share/man/
make && make install
openssh安装后环境配置
# 在openssh编译目录执行如下命令
# install -v -m755 contrib/ssh-copy-id /usr/bin
# install -v -m644 contrib/ssh-copy-id.1 /usr/share/man/man1
# install -v -m755 -d /usr/share/doc/openssh-8.2p1
# install -v -m644 INSTALL LICENCE OVERVIEW README* /usr/share/doc/openssh-8.2p1
# ssh -V
启用OpenSSH服务
# 在openssh编译目录执行如下目录
# cp -p contrib/redhat/sshd.init /etc/init.d/sshd
# chmod +x /etc/init.d/sshd
# chkconfig --add sshd
# chkconfig sshd on
# chkconfig --list sshd
# service sshd restart